Execution of arbitrary code via network, User access via network
6.0 and prior versions
White-Knight of the Alpha Hackers Digital Security Team reported a vulnerability in Adobe Acrobat Reader. A remote user may be able to cause arbitrary code to be executed.
A remote user can create a specially crafted PDF file that, when loaded by Acrobat Reader, will trigger an Invalid-ID-Handle-Error in 'AcroRd32.exe'. User supplied values may be written to certain memory locations and potentially executed.
A remote user may be able to create a PDF file that, when loaded by the target user, will execute arbitrary code on the target user's system.
No solution was available at the time of this entry.
Read More.... -> http://www.securitytracker.com/alerts/2005/Apr/1013774.html